Comments on: Do you run a website?

By: Nat

Nat — Fri, 19 Dec 2008 18:47:12 +0000

I run custom visitor tracking software and I noticed it in my reports.

By: Mike

Mike — Fri, 19 Dec 2008 06:41:53 +0000

Just wondering, how do you actually detect the hack?

By: Nat

Nat — Thu, 18 Dec 2008 00:26:18 +0000

Yea, I sanitize all of the data on the websites I code. I use a lot of pre-written regex to make sure that SQL injection never makes it to my database (hopefully that regex is solid!!).

By: Jeff

Jeff — Wed, 17 Dec 2008 23:03:42 +0000

Nice post Nat.

Garbage like this happens all the time. The most lethal is junk coming into your site from URL parameters, form submissions, etc..

Just today, 65.254.224.34 tried the following SQL injection attack on our site:
“viewPage.cfm?id=convert(int,select%20top%201%20table_name%20from%20information_schema.tables%20where%20table_name%20not%20in%20(char(0))))–sp_password”

Therefore, along with a completely random “admin” section, its also VERY important to make sure to check anything the user can pass to you. url parameters, forum postings, comments, the list goes on and on……

Thanks for the long list of urls checked by spammers/hackers.

By: Eric

Eric — Wed, 17 Dec 2008 16:56:39 +0000

Thanks Nat.